We performed a comparison between Falcon LogScale and LogRhythm SIEM based on real PeerSpot user reviews.
Find out what your peers are saying about Splunk, Wazuh, Datadog and others in Log Management."It offers the capability to view live log ingestion directly from the console which means you can seamlessly manage live log data ingestion alongside accessing and analyzing older data from the past."
"The most valuable feature is that we can alternate incident automations."
"Provides visibility into the network."
"It supports most standard log sources."
"The ability to drill down and pivot from an event is one of the biggest advantage the product has compared to other things that I have seen in the market."
"The major feature of this solution is its easy configuration which helps different team members to work on it effectively. This kind of feature is not available in other solutions because of a request for specialised schemes for configuration report extraction and searching. Another feature that I really admire is the significant improvement in the compliance in the auditing process by the solution. Our organisation-specific complaints require where the mailbox data needs to be forwarded, stored and searchable for a certain time period. This solution categorises data based on different types, which include cold, warm and hot data. These features allow faster and easier extraction of any data even if the event was occurring several years ago. I also like other features, especially user behaviour analysis and automation. If suddenly someone accesses your side or an unusual traffic is recorded from a user the solution flags it very effectively."
"It's positively affected our overall rate of efficiency."
"Overall effectiveness is very good. I like how it is oriented to both analysts and technical support people. It's easily adopted by end users as much as by technologists."
"The ability for me to go into the Web UI, and just learn what's going on in my environment."
"There are some overlapping features found in multiple tools."
"I would really like to see some type of group or global management for RIM policies,"
"We use Windows Event Forwarding to collect the logs from our Windows clients, and the logs get aggregated as one data source on that collector. Therefore, finding logs specific to one particular Windows system requires some creativity in how we search the SIEM."
"LogRhythm's SOAR and NDR features don't stack up well against competitors. maybe integrating theme functionality as the other do. But in general, it's okay."
"It should have some more message monitoring features. It can also have some free message monitoring tools."
"I would like to see more integration with more products that are out there within the same security field."
"Scalability-wise, it's not that great."
"I would like to see APIs well-documented and public facing, so we can get to them all."
"The initial setup is not so easy because it is quite a process."
Falcon LogScale is ranked 34th in Log Management with 1 review while LogRhythm SIEM is ranked 8th in Log Management with 166 reviews. Falcon LogScale is rated 9.0, while LogRhythm SIEM is rated 8.4. The top reviewer of Falcon LogScale writes "A highly commendable and robust solution offering powerful features and comprehensive log data management". On the other hand, the top reviewer of LogRhythm SIEM writes "The solution reduced our investigation time from days to hours and assists in managing our workflows". Falcon LogScale is most compared with Elastic Stack, Splunk Enterprise Security, Grafana Loki, Exabeam Fusion SIEM and Sumo Logic Security, whereas LogRhythm SIEM is most compared with IBM Security QRadar, Splunk Enterprise Security, Wazuh, LogRhythm Axon and Microsoft Sentinel.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.